General

  • Target

    13092024_1024_12092024_DHL_500698.rar

  • Size

    742KB

  • MD5

    c39d75fbbc259cd627ab5e826434f8f7

  • SHA1

    983aca8174a36a4685fe3c1b53019d07169d6e9e

  • SHA256

    74d66891522f27dc1fa9aea23701abb06be4432a1385b9761e5bb4f45e0b20ab

  • SHA512

    5757922f7dab32fb8b474917245497f122f2d9838fdbeb1605041453ec8cd289f6c390715e45f28cd715601d9f0294da82f1c592e9449c5afbb9a7885e5ae612

  • SSDEEP

    12288:JcoRUhO+fE/OFbpk6JHayL/IWYVRXxO7nxRFogJqcWcF0rh7YllCclA6okapZC:Jcp5EKpxhL/IbVRiFogJqcWcRllPA6gG

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 13092024_1024_12092024_DHL_500698.rar
    .rar

    Password: infected

  • DHL_500698.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections